Ruckus Wireless, a part of Brocade, today announced version 5.1 of its Cloudpath ES security and policy management software.
The latest software release is said to enable organizations to automatically and securely connect Internet of Things (IoT) devices using certificates—the gold standard of device security—allowing IT to establish policies governing the behavior of those devices.
In conjunction with the Cloudpath software certificate authority (CA) and supported standards-based protocols, the new capabilities allow organizations and IoT device manufacturers to easily and automatically secure a wide range of connected IoT devices without changing existing security infrastructure.
Gartner reports that IoT endpoints will reach an installed base of 20.4 billion units by 2020. In addition, AT&T’s Cybersecurity Insights Report, which surveyed more than 5,000 enterprises around the world, found that 85 percent of enterprises are in the process of or intend to deploy IoT devices. Yet, according to the report, a mere 10 percent of those surveyed feel confident that they could secure those devices against hackers.”
Cloudpath ES 5.1 software introduces device fingerprinting, a technique that allows IT to automatically identify IoT device types by comparing the device profile to a device fingerprint database. Together with other Cloudpath software features, the new release delivers the following benefits:
IT can automatically secure, using certificates, fingerprint-identified IoT devices. If the device is unable to use a certificate, a Ruckus Dynamic Pre-Shared Key can be used to secure it.
Both approaches enable IT to establish IoT device-specific policies. For example, IoT devices may be authorized to connect only to the cloud service with which they’re associated.
IT can continue to use existing RADIUS and CAs to secure non-IoT devices. By using Cloudpath software and its dedicated CA to secure IoT devices, organizations avoid reconfiguring their current AAA and CA security implementation or, worse, creating custom middleware to secure devices using an existing CA.
Manufacturers can improve the security readiness of their IoT devices. They can leverage standards-based certificate retrieval protocols such as SCEP and EST, which are native to the Cloudpath CA.
Managed service providers (MSPs) can add new tenants at will. MSPs can utilize the multitenant capabilities in the Cloudpath virtual deployment implementation, thereby reducing deployment costs and management overhead compared to deploying a separate instance of security and policy management software for each end customer.
The latest release of Cloudpath ES software will be generally available in the second quarter of 2017.